IN THE CLAIMS : 

Please cancel claims 21 and 22, without prejudice, and amend claims 6-8, and 10- 
17 as follows. 

1 . (Original) A method for authenticating a terminal in a communication system, 
the terminal comprising identification means for applying authentication functions to 
input data to form response data, and the communication system being arranged to utilise 
a first authentication protocol for authentication of the terminal, wherein an 
authentication functionality and the terminal share challenge data, the terminal forms 
response data and a first key by applying the authentication functions to the challenge 
data by means of the identification means, and returns the response data to the 
authentication functionality, and the authentication functionality authenticates the 
terminal by means of the response data and can apply an authentication function to the 
challenge data to duplicate the first key; the method comprising; 

executing a second authentication protocol wherein the terminal authenticates the 
identity of a network entity and the terminal and the network entity share a second key 
for use in securing subsequent communications between the terminal and the network 
entity; 

and subsequently executing a third authentication protocol by the steps of: 
sharing challenge data between the network entity and the terminal; 
forming at the terminal test data by at least applying one of the authentication 
functions to the challenge data by means of the identification means; 
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transmitting a message comprising terminal authentication data, from the terminal 
to the network entity; 

and determining based on the terminal authentication data whether to provide the 
terminal with access to a service; 

wherein in the determining step the terminal is provided with access to the service 
only if the terminal authentication data equals a predetermined function of at least the test 
data and the second key. 

2. (Original) A method as claimed in claim 1, wherein the method comprises: 
forming the test data by applying the authentication function to the challenge data 

at the authentication functionality; and 

transmitting the test data from the authentication functionality to the network 

entity; 

and wherein the determining step comprises forming network authentication data 
by applying the predetermined function to the test data and the key at the network entity; 
and in the determining step the terminal is provided with access to the service only if the 
terminal authentication data equals the network authentication data. 

3. (Original) A method as claimed in claim 1, wherein the method comprises: 
transmitting the second key from the network entity to the authentication 

functionality; 

forming the test data by applying the authentication function to the challenge data 
at the authentication functionality; and 
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forming network authentication data by applying the predetermined function to the 
test data and the key at the authentication functionality. 

4. (Original) A method as claimed in claim 3 , comprising: 

transmitting the terminal authentication data from the network entity to the 
authentication functionality; 

transmitting from the authentication functionality to the network entity an 
indication of whether the terminal authentication data equals the network authentication 
data; 

and wherein in the determining step the terminal is provided with access to the 
service only if the indication is that the terminal authentication data equals the network 
authentication data. 

5. (Original) A method as claimed in claim 3 , comprising: 

transmitting the network authentication data from the authentication functionality 
to the network entity; 

and wherein in the determining step the terminal is provided with access to the 
service only if the indication is that the terminal authentication data equals the network 
authentication data. 

6. (Currently Amended) A method as claimed in any prec e ding claim J_, wherein 
the terminal authentication data is formed as a cryptographic checksum 

7. (Currently Amended) A method as claimed in any prec e ding claim J_, wherein 
the network entity is co-located with the authentication functionality. 
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8. (Currently Amended) A method as claimed in any pr e c e ding claim I, wherein 
authentication means is an identity module of the terminal. 

9. (Original) A method as claimed in claim 8 5 wherein the identity module is 
user-removable from the terminal. 

10. (Currently Amended) A method as claimed in claim 8 e^-9 ? wherein the 
identity module is a SIM or a USIM. 

1 1 . (Currently Amended) A method as claimed in any pr e ceding claim I, wherein 
the first authentication protocol is the AKA protocol or any protocol of the EAP family. 

12. (Currently Amended) A method as claimed in claim 1 1 as dependent on any 
of claims 2 to 6 2, wherein the first authentication protocol is the AKA protocol or any 
protocol of the EAP family , and wherein the test data includes one or both of the AKA IK 
value or the AKA CK value. 

13. (Currently Amended) A method as claimed in any preceding claim j_, wherein 
the authentication means stores a code and the authentication function comprises 
applying a cryptographic transformation to the code and the input data. 

14. (Currently Amended) A method as claimed in any preceding claim 1, wherein 
the second authentication protocol is the PIC, the PEAP protocol or the EAP-TTLS 
protocol. 

15. (Currently Amended) A method as claimed in any pr e ceding claim J_, 
wherein the challenge data and the response data are formed according to the EAP 
protocol. 
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16. (Currently Amended) A method as claimed in any pr e ceding claim I, 
wherein the said message is a dedicated authentication message. 

17. (Currently Amended) A method as claimed in any prec e ding claim I, 
wherein the predetermined function is used for derivation of a session key to be used for 
encryption and/or authentication of communications between the terminal and the 
network entity. 

18. (Original) A communication system comprising identification means for 
applying authentication functions to input data to form response data, and the 
communication system being arranged to utilise a first authentication protocol for 
authentication of the terminal, wherein an authentication functionality and the terminal 
share challenge data, the terminal forms response data and a first key by applying the 
authentication functions to the challenge data by means of the identification means, and 
returns the response data to the authentication functionality, and the authentication 
functionality authenticates the terminal by means of the response data and can apply an 
authentication function to the challenge data to duplicate the first key; the system being 
arranged to perform an authentication method comprising the steps of: 

executing a second authentication protocol wherein the terminal authenticates the 
identity of a network entity and the terminal and the network entity share a second key 
for use in securing subsequent communications between the terminal and the network 
entity; 

and subsequently executing a third authentication protocol by the steps of: 
sharing challenge data between the network entity and the terminal; 
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forming at the terminal test data by at least applying one of the authentication 
functions to the challenge data by means of the identification means; 

transmitting a message comprising terminal authentication data, from the terminal 
to the network entity; 

and determining based on the terminal authentication data whether to provide the 
terminal with access to a service; 

wherein in the determining step the terminal is provided with access to the service 
only if the terminal authentication data is consistent with the network authentication data 
computed as a predetermined function of at least the test data and the second key. 

19. (Original) A communication system comprising a terminal, a network entity 
and an authentication functionality, the terminal comprising identification means for 
applying an authentication function to input data to form response data, and the 
communication system being arranged to utilise a first authentication protocol wherein 
the terminal authenticates the identity of a network entity and the terminal and the 
network entity share a key for use in securing subsequent communications between the 
terminal and the network entity; and the communication system being arranged to 
perform an authentication method comprising the steps of: executing a second 
authentication protocol for authentication of the terminal, wherein an authentication 
functionality supplies challenge data to the terminal, the terminal forms response data and 
test data by applying the authentication function to the challenge data by means of the 
identification means, and returns the response data to the authentication functionality, and 
the authentication functionality authenticates the terminal by means of the response data; 
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and subsequently executing a third linking protocol by the steps of forming at the 
terminal secret session keys by at least applying a predetermined function to the secret 
test data by means of the shared key established in the first protocol; forming at the 
network entity secret session keys by at least applying a predetermined function to the 
secret test data by means of the shared key established in the first protocol; wherein in the 
secret session keys are used to secure the subsequent communication between the 
terminal and some network element. 

20. (Original) A an authentication method for use in a communication system 
comprising a terminal, a network entity and an authentication functionality, the terminal 
comprising identification means for applying an authentication function to input data to 
form response data, and the communication system being arranged to utilise a first 
authentication protocol wherein the terminal authenticates the identity of a network entity 
and the terminal and the network entity share a key for use in securing subsequent 
communications between the terminal and the network entity; and the authentication 
method comprising the steps of: executing a second authentication protocol for 
authentication of the terminal, wherein an authentication functionality supplies challenge 
data to the terminal, the terminal forms response data and test data by applying the 
authentication function to the challenge data by means of the identification means, and 
returns the response data to the authentication functionality, and the authentication 
functionality authenticates the terminal by means of the response data; and subsequently 
executing a third linking protocol by the steps of forming at the terminal secret session 
keys by at least applying a predetermined function to the secret test data by means of the 
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shared key established in the first protocol; forming at the network entity secret session 
keys by at least applying a predetermined function to the secret test data by means of the 
shared key established in the first protocol; wherein in the secret session keys are used to 
secure the subsequent communication between the terminal and some network element. 

21. (Cancelled) 

22. (Cancelled) 
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